Julian Köhn is Founder and CEO of Kopexa. He has been building security and compliance solutions for European mid-market companies for over 10 years. Focus areas: NIS2, ISO 27001, GDPR, TISAX. Kopexa was founded to make GRC transparent and self-service for SMEs.
Articles
GDPR Subject Access Request: How to Answer a DSAR Lawfully
A DSAR (Data Subject Access Request) under Art. 15 GDPR must be answered within 30 days. We walk you through the 8-step workflow from identity verification to data extraction and redaction, and which grounds for refusal are legally defensible.
Julian Köhn·
What Is OSCAL? A Deep Dive Into Compliance as Code and BSI Grundschutz++
OSCAL turns security controls into machine-readable data. BSI Grundschutz++ adopts it as its native core. We explain the architecture, PDCA methodology and what the January 1, 2026 standard switch means for your ISMS.
Julian Köhn·NIS2 Germany: Complete Guide for International Companies (2026)
Everything an international company with operations in Germany needs to know about NIS2 / NIS2UmsuCG: who is in scope, deadlines, registration with the BSI, fines, and how DORA and KRITIS fit in.
Julian Köhn·
What Is an ISMS? Definition, Examples and Build-Up Guide
ISMS definition, concrete mid-market examples, PDCA cycle, vulnerability management and a practical build-up guide. With ISO 27001, BSI IT-Grundschutz, TISAX and NIS2 compared, plus fines and liability.
Julian Köhn·
Palantir: A Lesson in Vendor Risk Management
Switzerland blocks Palantir, Germany pushes it through bypassing parliament. An analysis of devastating risks and the sell-out of digital sovereignty.
Julian Köhn·
NIS2 Executive Management: Training Obligation & Liability 2025
Mandatory training under NIS2: who is affected? What liability do directors face? All content, obligations & risks explained simply. Get informed now.
Julian Köhn·
Running Matomo in a Privacy-Compliant Way: How to Do It Without a Cookie Banner
Cookie banners are annoying? With Matomo you can finally run analytics in a privacy-compliant, banner-free way. Step-by-step guide plus audit evidence.
Julian Köhn·
5 Benefits of Automated Risk Analysis for Mid-Sized Companies
Learn how automated risk analysis helps SMEs detect risks early, ensure compliance and improve decision-making.
Julian Köhn·
Compliance Software Costs for SMEs: Comparison & Kopexa
Guide to compliance software: features, pricing models, audit and certification costs for SMEs, including comparison.
Julian Köhn·
NIS2: The Underestimated Obligation for SMEs and Suppliers
NIS 2 obliges SMEs and suppliers to meet higher cybersecurity standards, reporting channels and ISMS integration for greater digital resilience.
Julian Köhn·
Certification Roadmap: ISO 9001 to 27001
Certification roadmap for ISO standards: Start with ISO 9001, leverage synergies with ISO 14001/27001. Reduce implementation time by 50% and save costs.
Julian Köhn·
DevOps & GDPR: Anonymising Data Automatically
How to maintain GDPR compliance in DevOps: automated anonymisation and pseudonymisation, PostgreSQL RLS/data masking, CI/CD integration for risk-free testing.
Julian Köhn·
ESG Compliance: How to Master the New Reporting Obligations
The CSRD is coming: learn how to use ESG compliance as a strategic advantage and turn it into a game-changer with Kopexa!
Julian Köhn·